10-50 people normal use case?
For KeePass no, for VaultWarden yes.
Just got triggered for the comment above suggesting a solution that doesn’t work for quite a lot of deployments/users, but yes, my comment was a little bit out of place as for single user deployments KeePass is probably way simpler/better.
Totally agreed, but there are pros and cons.
File - harder to steal but once stolen hacker can bruteforce it as much as it wants. Web service - with proper rate limits (and additional IP whitelist so you can only sync on VPN/local network) - its harder to bruteforce. (But yes, you (sometimes) have also full copy locally in the local client, but …)
If it was only for me I probably would also go with KeePass as you will not update the same db at the same time, but with with multiple users it’s getting unmanageable.
I just got triggered as those CVEs are not that bad due to the nature that the app encrypts stuff on the client side so web server is more like shared file storage, while your answer suggested to switch to a solution that doesn’t work for a lot of people (as we already tried that).
Explain how can you use KeePass+Syncthing with 10-50 people (possibly different groups for different passwords) having different sets of access level while maintaining sane ease of use?
The passwords are encrypted in the first place so the security for them is only on the client side.
I call those estimates BS like always, but who knows.
Maybe they should focus on giving people a way to access those legally? Where on that poster campain say where to go? And secondly… They as always still introduce the BS regional locking!
(No internet =} no download = no failure
You can even host repo mirror locally, that will still work without internet ;)
How to have internet without power?
Just having btrfs is not enough, you need to have automatic snapshots (or do them manually) before doing updates and configured grub to allow you to rollback.
Personally, I’m to lazy to configure stuff like that, I rather just pick my Vetroy USB from backpack, boot into live image and just fix it (while learning something/new interesting) than spend time preventing something that might never happen to me :)
It first downloads all packages from net, then it proceed totally offline starting by verifying downloaded files, signatures, extracting new packages and finally rebuilding initramfs.
Because arch is replacing the kernel and inittamfs in-place there is a chance that it will not boot if interrupted.
This issue was long resolved on other distro.
One way to mitigate it is by having multiple kernels (like LTS or hardened) that you can always pick in grub if the main one fail.
What about a desktop PC?
grep bat /proc/driver/rtc ❤️
Always learning something new, thanks :)
Yes, user should (at least try to) provide their own message, if not and it just post links to (their own?) pages then account should be marked as Bot IMHO.
Just because you send me malware after some text I wanted to read (in http response), don’t give you rights to force me to execute the malware.
Just because I have your book (or page) and look at part of it doesn’t give you the right to force me to read it in full or dictate how I’m reading it.
I have every right to reveal/read only part of the book/page. We didn’t sign any agreement, if you want me to first look at the part you want to or agree to some license nothing stopping you to do, stuff like paywall or subscription exists…
What could be real world use case of using this protocol?
andOTP + bitwarden for me
Old good factorio headless Penguin, it’s like that for so long…
Hello fellow Factorio players :)
Immich
Wanting to spin-up but constantly delaying…
Because Nginx Proxy Manager exists.
And also because for me it started from web hosting where Apache and Nginx dominate and later because of many easy to understand example configs from the net including many “docker letsencrypt” examples.
You can go to /var/log/apt/ and read the history.log as it will contain every single package that you did install/remove.
Based on that you can just restore it to working state by manually undoing the changes (removing installed, installing removed)
Over all I upvote posts if its something I would like to know about.
In this case its good to know that there was some limit issue that (as on the page say) is already resolved.
If it was intentionally done or not we will never know, but its good to know if it would happen again that there is some limit.
I upvote because:
Does it support intro skip?